$NetBSD: patch-ac,v 1.3 2011/03/24 12:43:53 drochner Exp $

CVE-2011-1166

--- xen/arch/x86/domain.c.orig	2008-04-25 13:03:12.000000000 +0000
+++ xen/arch/x86/domain.c
@@ -701,6 +701,11 @@ int arch_set_info_guest(
 
                 v->arch.guest_table_user = pagetable_from_pfn(cr3_pfn);
             }
+	    else if ( !(flags & VGCF_in_kernel) )
+	    {
+		destroy_gdt(v);
+		return -EINVAL;
+	    }
 #endif
         }
 #ifdef CONFIG_COMPAT